|
265801
|
- |
|
apple
|
airport_express_base_station_firmware
airport_extreme_base_station_firmware
airport_express
airport_extreme
time_capsule
|
The Application-Level Gateway (ALG) on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 modifies PORT commands in incoming FTP traffic…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0039
|
2011-01-19 15:53 |
2010-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265802
|
- |
|
apple
|
airport_express_base_station_firmware
airport_extreme_base_station_firmware
airport_express
airport_extreme
time_capsule
|
The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 does not limit the rate of (1) Router Advertisement and …
|
CWE-399
Resource Management Errors
|
CVE-2009-2189
|
2011-01-19 15:48 |
2010-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265803
|
- |
|
realnetworks
|
realplayer
realplayer_sp
|
The cook codec in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, Mac RealPlayer 11.0 through 12.0.0.1444, and Linux RealPlayer 11.0.2.1744 does not properly perform initi…
|
NVD-CWE-Other
|
CVE-2010-0121
|
2011-01-19 14:00 |
2010-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265804
|
- |
|
realnetworks
|
realplayer
realplayer_sp
|
Per: http://cwe.mitre.org/data/definitions/665.html
'CWE-665: Improper Initialization'
|
NVD-CWE-Other
|
CVE-2010-0121
|
2011-01-19 14:00 |
2010-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265805
|
- |
|
oracle
|
e-business_suite
|
Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2010-2388
|
2011-01-19 14:00 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265806
|
- |
|
hypermail-project
|
hypermail
|
Cross-site scripting (XSS) vulnerability in Hypermail 2.2.0 allows remote attackers to inject arbitrary web script or HTML via a crafted From address, which is not properly handled when indexing mess…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4339
|
2011-01-18 14:00 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265807
|
- |
|
ecava
|
integraxor
|
Directory traversal vulnerability in Ecava IntegraXor 3.6.4000.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the file_name parameter in an open request.
|
CWE-22
Path Traversal
|
CVE-2010-4598
|
2011-01-14 15:48 |
2010-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265808
|
- |
|
cstr
|
festival
|
festival_server in Centre for Speech Technology Research (CSTR) Festival, probably 2.0.95-beta and earlier, places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gai…
|
NVD-CWE-Other
|
CVE-2010-3996
|
2011-01-14 15:47 |
2010-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265809
|
- |
|
squid-cache
|
squid
|
The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a …
|
NVD-CWE-Other
|
CVE-2010-3072
|
2011-01-14 15:46 |
2010-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265810
|
- |
|
squid-cache
|
squid
|
Per: http://cwe.mitre.org/data/definitions/476.html
'CWE-476: NULL Pointer Dereference'
|
NVD-CWE-Other
|
CVE-2010-3072
|
2011-01-14 15:46 |
2010-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
